Arbitrary File Overwrite Vulnerability in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter
CVE-2025-66262

9.3CRITICAL

Key Information:

Vendor: Db Electronica Telecomunicazioni S.p.a.
Status: Mozart Fm Transmitter
Vendor: CVE Published:; 26 November 2025

🔔 Create Db Electronica Telecomunicazioni S.p.a. Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-66262?

A vulnerability exists in the DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter that allows an attacker to overwrite arbitrary files on the system via a crafted tar archive. The vulnerable restore_mozzi_memories.sh script extracts user-controlled tar archives using the -C / flag, which permits the contents to be placed directly into the filesystem's root without proper path validation. This misconfiguration, particularly when combined with other unauthenticated file upload weaknesses, enables malicious actors to create .tgz files with path-traversed filenames that may overwrite critical system files in writable directories, leading to potential full system compromise.

Affected Version(s)

Mozart FM Transmitter 30

Mozart FM Transmitter 50

Mozart FM Transmitter 100

References

https://www.abdulmhsblog.com/posts/webfmvulns/

exploittechnical-description

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

Low

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Nov 26, 2025
👾
Exploit known to exist
Nov 26, 2025
Vulnerability published
Nov 26, 2025
Vulnerability Reserved
Nov 26, 2025

Credit

Abdul Mhanni

JSON